Lucene search
PRIOn knowledge basePRION:CVE-2015-0840HistoryApr 13, 2015 - 2:59 p.m.
Design/Logic Flaw
2015-04-1314:59:00
PRIOn knowledge base
www.prio-n.com
3
7 High
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
69.8%
The dpkg-source command in Debian dpkg before 1.16.16 and 1.17.x before 1.17.25 allows remote attackers to bypass signature verification via a crafted Debian source control file (.dsc).
| CPE | Name | Operator | Version |
|---|---|---|---|
| ubuntu_linux | eq | 12.04 | |
| ubuntu_linux | eq | 14.10 | |
| ubuntu_linux | eq | 14.04 | |
| ubuntu_linux | eq | 10.04 | |
| dpkg | eq | 1.17.14 | |
| dpkg | eq | 1.17.24 | |
| dpkg | eq | 1.17.3 | |
| dpkg | eq | 1.17.11 | |
| dpkg | eq | 1.17.6 | |
| dpkg | eq | 1.17.7 |
Related
cve
cve
CVE-2015-0840
2015-04-13 14:59:00
securityvulns
securityvulns
[SECURITY] [DSA 3217-1] dpkg security update
2015-04-13 00:00:00
dpkg protection bypass
2015-04-13 00:00:00
openvas
openvas
Debian Security Advisory DSA 3217-1 (dpkg - security update)
2015-04-09 00:00:00
Debian: Security Advisory (DSA-3217-1)
2015-04-08 00:00:00
Ubuntu: Security Advisory (USN-2566-1)
2015-04-10 00:00:00
nessus
nessus
openSUSE Security Update : dpkg / update-alternatives (openSUSE-2015-421)
2015-06-15 00:00:00
Debian DSA-3217-1 : dpkg - security update
2015-04-10 00:00:00
Debian DLA-220-1 : dpkg security update
2015-05-18 00:00:00
debian
debian
[SECURITY] [DLA 220-1] dpkg security update
2015-05-15 22:49:59
[SECURITY] [DSA 3217-1] dpkg security update
2015-04-09 19:14:16
[SECURITY] [DSA 3217-1] dpkg security update
2015-04-09 19:14:34
osv
osv
dpkg - security update
2015-05-15 00:00:00
ubuntucve
ubuntucve
CVE-2015-0840
2015-04-09 00:00:00
ubuntu
ubuntu
dpkg vulnerability
2015-04-09 00:00:00
cvelist
cvelist
CVE-2015-0840
2015-04-13 14:00:00
debiancve
debiancve
CVE-2015-0840
2015-04-13 14:59:00
mageia
mageia
Updated dpkg packages fix CVE-2015-0840
2015-05-06 19:44:10
fedora
fedora
[SECURITY] Fedora 21 Update: dpkg-1.16.16-5.fc21
2015-05-12 20:48:24
[SECURITY] Fedora 22 Update: dpkg-1.16.16-5.fc22
2015-05-08 07:45:09
[SECURITY] Fedora 20 Update: dpkg-1.16.16-5.fc20
2015-05-12 20:49:31
7 High
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
69.8%
Related for PRION:CVE-2015-0840